Reuters reports: Ukraine accused an unnamed group of Russian hackers on Wednesday (Feb 24) of trying to disseminate malicious documents through a web-based system on which government documents are circulated, but did not say whether any damage was caused. Kyiv has previously accused Moscow of orchestrating large cyber attacks as part of a “hybrid war”…
Category: Hack
Wawa Reaches Proposed $12M Settlement in Data Breach Litigation
Max Mitchell reports: Attorneys representing Wawa customers who potentially had their payment card information exposed to hackers have reached a more than $12 million settlement with the regional convenience store chain, according to court papers in Philadelphia federal court. Read more on Law.com (free sub. required).
PA: Colonial Park Realty Co t/a Enders Notifies Customers of Data Breach
Colonial Park Realty Co. (Enders Insurance) issued a press release about a data breach that occurred last April when an employee’s email account was compromised. The breach was discovered on May 7, 2020, and they have been investigating since then, it seems, to find out who was impacted. Enders claims that they are notifying “in…
Police investigate racist hack that disrupted Ben Franklin High students’ virtual field trip
KYW reports: Police and the School District of Philadelphia are investigating after a virtual field trip by students at Ben Franklin High School was hacked. The district said three dozen students were subjected to suggestive images and inappropriate language. Read more on Radio.com.
Transport for NSW confirms data taken in Accellion breach
Aras Barbaschow reports: Transport for New South Wales (TfNSW) has confirmed being impacted by a cyber attack on a file transfer system owned by Accellion. Read more on ZDNet.
FireEye and Accellion provide more details on attack
Andrew Moore, Genevieve Stark, Isif Ibrahima, Van Ta of FireEye write: Starting in mid-December 2020, malicious actors that Mandiant tracks as UNC2546 exploited multiple zero-day vulnerabilities in Accellion’s legacy File Transfer Appliance (FTA) to install a newly discovered web shell named DEWMODE. The motivation of UNC2546 was not immediately apparent, but starting in late January 2021, several organizations…